$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft File: pcmHAk0KjqwJZAn9mewy7JBHC6M.mft (raw, json) Hash identifier: +JnkKXTzf7HGS4Kt47Nv+2/lodGNjltBYiPXbs8OBQ0= Subject key identifier: AA:AC:9B:09:CB:8D:3C:0E:CF:47:3A:DB:6B:A8:F8:F7:78:F9:A4:55 Authority key identifier: A5:C9:87:02:4D:0A:8E:AC:09:64:09:FD:99:EC:32:EC:90:47:0B:A3 Certificate issuer: /CN=A91E4B86/serialNumber=A5C987024D0A8EAC096409FD99EC32EC90470BA3 Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pcmHAk0KjqwJZAn9mewy7JBHC6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft Manifest number: 79 Signing time: Sun 19 Oct 2025 10:06:40 +0000 Manifest this update: Sun 19 Oct 2025 10:06:40 +0000 Manifest next update: Sun 26 Oct 2025 10:06:39 +0000 Files and hashes: 1: pcmHAk0KjqwJZAn9mewy7JBHC6M.crl (hash: xIAn+pM36bOQ0Cw/UFRxwyCl1MAVWshFnlkrZIuiJAg=) 2: 4C51E1D4F7E511EF9A28D363C4F9AE02.roa (hash: EWVCVV5zCZB19LClSuWFTWXQU193NPHqHKJqFm4wMOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.crl rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pcmHAk0KjqwJZAn9mewy7JBHC6M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4B86, serialNumber=A5C987024D0A8EAC096409FD99EC32EC90470BA3 Validity Not Before: Oct 19 10:06:40 2025 GMT Not After : Oct 26 10:06:39 2025 GMT Subject: CN=68f4b830-cb97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a0:8f:fb:c1:34:ae:e8:b9:22:a0:30:bc:02: a6:ec:9a:70:ff:9c:29:d5:d4:9a:58:ae:39:0c:ce: 17:e7:f2:34:04:a7:40:24:a9:52:35:98:c0:48:17: a6:a2:a5:e2:e7:47:9f:4f:52:6c:f2:76:fe:ea:97: d7:1b:b3:5e:6d:1e:61:56:3f:73:1a:d8:93:48:3f: a6:6a:ae:64:3c:85:9c:7b:1e:e7:c9:d9:d3:67:6e: ec:b9:ae:95:e8:63:f5:0e:33:20:79:29:71:2b:dd: b1:05:0c:1d:a2:8b:0d:98:70:ad:b0:50:58:fd:90: 50:da:d8:b3:a1:7b:da:0b:3a:36:c5:6b:df:2f:49: 6e:85:16:69:25:85:40:3b:fd:d2:ca:4c:0d:44:92: b0:2c:c9:9a:37:c9:22:56:4c:f2:46:6e:6b:1f:4d: a0:99:c6:6c:46:e1:bc:14:9f:20:c6:f9:85:da:05: 88:f1:ca:63:b3:a1:77:ee:2f:58:6c:d9:be:96:9f: 5f:a8:ab:a0:ef:b9:9e:44:0a:76:af:f2:ed:3d:8a: 0a:9b:0d:ab:47:90:89:63:cf:2d:2c:ef:d6:30:28: 27:f8:86:7b:0e:a1:a9:4a:b3:e2:ce:5f:5a:fa:ea: e9:91:79:e8:fa:a2:85:a5:5c:c9:f6:b2:23:31:41: 1d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:AC:9B:09:CB:8D:3C:0E:CF:47:3A:DB:6B:A8:F8:F7:78:F9:A4:55 X509v3 Authority Key Identifier: keyid:A5:C9:87:02:4D:0A:8E:AC:09:64:09:FD:99:EC:32:EC:90:47:0B:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pcmHAk0KjqwJZAn9mewy7JBHC6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:4f:a8:87:a1:2c:3b:c5:67:3b:c2:8a:a6:a9:b5:db:8e:28: f9:b5:94:a8:3e:97:14:98:f0:f4:6b:66:7a:f6:0c:a1:b6:81: df:3f:31:d3:db:65:c9:46:47:d0:08:81:58:72:6b:1c:ae:69: bd:43:4e:53:95:21:7a:58:e5:b8:06:61:77:c7:23:d3:ae:c8: be:71:06:1d:d1:a4:1f:72:e0:ec:cd:d4:21:30:d5:59:16:6d: aa:72:fc:59:be:d8:c2:0a:07:79:51:58:4c:c6:e5:48:17:b5: 9c:9e:69:6c:0a:7e:f6:52:f2:4b:ea:f4:19:3e:2d:0a:e0:26: 35:b1:45:e4:b9:f8:0b:75:4c:10:b2:23:d5:d4:4b:6b:07:3f: d7:9c:b6:e5:fc:fd:12:0d:49:ae:23:0e:93:72:3a:1b:93:4c: 00:3e:6b:b5:ad:29:68:ff:b7:e7:dd:27:2b:76:d8:40:b5:11: 0e:cd:bb:00:91:a8:e2:d4:ad:2c:5f:a8:6c:b1:3b:da:2e:00: 7e:07:f6:e0:12:50:6f:73:e3:54:18:75:34:24:3b:4d:a8:56: 6e:95:21:6e:88:d2:39:e9:05:1f:0a:38:82:8d:7c:24:1d:de: 29:aa:19:96:d5:4a:ae:49:b0:3b:f9:a3:17:21:39:10:8d:9d: 96:c5:51:d9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NEI4NjExMC8GA1UEBRMoQTVDOTg3MDI0RDBBOEVBQzA5NjQwOUZEOTlFQzMyRUM5 MDQ3MEJBMzAeFw0yNTEwMTkxMDA2NDBaFw0yNTEwMjYxMDA2MzlaMBgxFjAUBgNV BAMTDTY4ZjRiODMwLWNiOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/oI/7wTSu6LkioDC8AqbsmnD/nCnV1JpYrjkMzhfn8jQEp0AkqVI1mMBIF6ai peLnR59PUmzydv7ql9cbs15tHmFWP3Ma2JNIP6ZqrmQ8hZx7HufJ2dNnbuy5rpXo Y/UOMyB5KXEr3bEFDB2iiw2YcK2wUFj9kFDa2LOhe9oLOjbFa98vSW6FFmklhUA7 /dLKTA1EkrAsyZo3ySJWTPJGbmsfTaCZxmxG4bwUnyDG+YXaBYjxymOzoXfuL1hs 2b6Wn1+oq6DvuZ5ECnav8u09igqbDatHkIljzy0s79YwKCf4hnsOoalKs+LOX1r6 6umReej6ooWlXMn2siMxQR2zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqqybCcuN PA7PRzrba6j493j5pFUwHwYDVR0jBBgwFoAUpcmHAk0KjqwJZAn9mewy7JBHC6Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0Qjg2Lzg5MzMxNDhBRjdF MzExRUY4QURBOEE0MUM0RjlBRTAyL3BjbUhBazBLanF3SlpBbjltZXd5N0pCSEM2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcGNtSEFrMEtqcXdKWkFuOW1ld3k3SkJIQzZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 Qjg2Lzg5MzMxNDhBRjdFMzExRUY4QURBOEE0MUM0RjlBRTAyL3BjbUhBazBLanF3 SlpBbjltZXd5N0pCSEM2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD5PqIehLDvFZzvCiqaptduOKPm1lKg+lxSY8PRrZnr2DKG2gd8/MdPb ZclGR9AIgVhyaxyuab1DTlOVIXpY5bgGYXfHI9OuyL5xBh3RpB9y4OzN1CEw1VkW bapy/Fm+2MIKB3lRWEzG5UgXtZyeaWwKfvZS8kvq9Bk+LQrgJjWxReS5+At1TBCy I9XUS2sHP9ectuX8/RINSa4jDpNyOhuTTAA+a7WtKWj/t+fdJyt22EC1EQ7NuwCR qOLUrSxfqGyxO9ouAH4H9uASUG9z41QYdTQkO02oVm6VIW6I0jnpBR8KOIKNfCQd 3imqGZbVSq5JsDv5oxchORCNnZbFUdk= -----END CERTIFICATE-----Generated at Mon Oct 20 20:44:54 2025 by rpki-client